[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 364
  • Last Modified:

temporary fix thru ACL on cisco router for Web sense not working

Hi there,
i just found out that my url filtering software web sense license had expired about a couple of months ago ... till i get my license renewed, i want to know if there is any temporary fix i can achieve by using extended acl's on cisco router and deny access to specific websites
Scenario: Branch Router (Billion) --> ISP WAN --> Our Core Router (Cisco 2821) --> Internet

Example: i want to block web access to http://vasi.net ... while doing nslookup, i found site's public i.p to be 92.241.162.99 .. how and which interface shud i apply the acl to deny web access from the branch's I.P (which my core router knows about ) to this i.p ?

Would it be

access-list 101 deny tcp x.x.x.x y.y.y.y host 92.241.162.99 eq 80
access-list 101 deny tcp x.x.x.x y.y.y.y host 92.241.162.99 eq 443
access-list 101 permit ip any any

and apply it to the inside interface of core router (which connects to ip wan) ?

0
nabeel92
Asked:
nabeel92
  • 2
1 Solution
 
gcl_hkCommented:
for this setting, you should apply the ACL to the branch router LAN interface as a inbound direction filtering
0
 
nabeel92Author Commented:
the inbound is a billion router .. i havent worked on billion before ... do they have filtering options like ACL ? secondly, is it possible if i can do it on a core router because there are about 50 sites connected to that core router and instead of defining it for each branch, i think i should do it on core ?
Is the ACL i wrote above is correct ?
0
 
gcl_hkCommented:
if you have more than one branch site, of coz you apply ACL to the core router is a better way, just apply it on connect to the "IP WAN" interface. But you do not have mentioned about the "ISP WAN" is what type connection. Anyway, please aware if NAT involed of this "ISP WAN"
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now